In April 2025, the number of new ransomware samples increased compared to the previous month, with detailed statistics on affected companies and systems gathered from ransomware leak sites. These insights highlight ongoing ransomware threats and impact assessments by entity and group. #RansomwareGroups #AffectedCompanies
Keypoints
- The volume of new ransomware samples collected in April 2025 showed a noticeable increase over March 2025.
- Statistics on affected companies were derived from data published on ransomware groupsβ dedicated leak sites (DLS).
- The report consolidates global ransomware activity, including issues inside and outside Korea.
- Most affected companies and systems were identified through ATIP infrastructure monitoring ransomware PR pages.
- The number of ransomware samples and affected systems are tracked using detection names assigned by AhnLab.
- Some ransomware groupsβ data were collected later or remain unsubmitted, with recommendations to consult external statistics for a complete view.
- Examples of MD5 hashes of ransomware samples discovered in the reporting period are provided to assist in threat identification.
MITRE Techniques
- [No specific MITRE ATT&CK techniques were detailed or mentioned in the article.]
Indicators of Compromise
- [File Hash ] examples of ransomware sample hashes identified in April 2025 β 1fe046d8b5e52d23adf111d6a2ce8fd0, 7bf371744441119363b88368c21f30d7, and others including 3438330338936c52ccadbcc00ad8eb70, 3c69845de1a804055d0c2de3651de270, 7ffb8a403a298e5b0d5f8bf3c6d119e6
Read more: https://asec.ahnlab.com/en/87946/
Views: 24